Exchange Exploit Leads to Domain Wide Ransomware
https://thedfirreport.com/2021/11/15/exchange-exploit-leads-to-domain-wide-ransomware/
Guess who’s back – cyber.wtf
https://cyber.wtf/2021/11/15/guess-whos-back/
Cyber Security Training Events | SANS Institute
http://sans.org/u/1gvq
WINHELLO2hashcat
https://hashcat.net/forum/thread-10461.html
Cryptolaemus on Twitter: "This is our 3rd anniversary of Cryptolaemus1. Thanks for all the follows and sharing of intel these past 3 years! To celebrate, Ivan has released a new version of Emotet because he feels left out and wants to be part of the party. More details coming soon. As always watch URLHaus https://t.co/Qwvel32ibB" / Twitter
https://twitter.com/Cryptolaemus1/status/1460302706954981385
North Korean Hackers Target Cybersecurity Researchers with Trojanized IDA Pro
https://thehackernews.com/2021/11/north-korean-hackers-target.html
Taking the pain out of C2 infrastructure (Part 2)
https://byt3bl33d3r.substack.com/p/taking-the-pain-out-of-c2-infrastructure-3c4?r=jt535&utm_campaign=post&utm_medium=web&utm_source=
Telegram: Contact @sickcodeschat
https://t.me/sickcodeschat
Feodo Tracker | Browse Botnet C&Cs
https://feodotracker.abuse.ch/browse/emotet/
The DFIR Report on Twitter: "Exchange Exploit Leads to Domain Wide Ransomware TTR: 42 Hours Initial Access: Exchange Exploited (ProxyShell) Discovery: ipconfig, nslookup, ping, KPortScan, etc. Execution: Fast Reverse Proxy & Plink Lateral Movement: RDP Impact: Data Encryption https://t.co/adxHmp4P7K" / Twitter
https://twitter.com/TheDFIRReport/status/1460221329953669123
GitHub - RUB-SysSec/nyx-net
https://github.com/RUB-SysSec/nyx-net
Tweet / Twitter
https://twitter.com/TomWRollins/status/1460159590981672962
RCE in Concrete CMS
https://www.fortbridge.co.uk/research/multiple-vulnerabilities-in-concrete-cms-part1-rce/
https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt
https://feodotracker.abuse.ch/downloads/ipblocklist_recommended.txt
Emotet malware is back and rebuilding its botnet via TrickBot
https://www.bleepingcomputer.com/news/security/the-emotet-malware-is-back-and-rebuilding-the-botnet-via-trickbot/
FBI system hacked to email 'urgent' warning about fake cyberattacks
https://www.bleepingcomputer.com/news/security/fbi-system-hacked-to-email-urgent-warning-about-fake-cyberattacks/
New Moses Staff group targets Israeli organizations in destructive attacks
https://therecord.media/new-moses-staff-group-targets-israeli-organizations-in-destructive-attacks/
POC2021 – Pwning the Windows 10 Kernel with NTFS and WNF Slides | NCC Group Research Blog | Making the world safer and more secure
https://research.nccgroup.com/2021/11/15/poc2021-pwning-the-windows-10-kernel-with-nfts-and-wnf-slides/
Martin Matishak on Twitter: "DHS launches new effort to attract cybersecurity talent https://t.co/IAYEVxo3hn" / Twitter
https://twitter.com/martinmatishak/status/1460269644313464841
Malware-IOCs/2021-11-15 Emotet IOCs at main · executemalware/Malware-IOCs · GitHub
https://github.com/executemalware/Malware-IOCs/blob/main/2021-11-15%20Emotet%20IOCs
Homeland Security on Twitter: "Today, DHS is launching the Cybersecurity Talent Management System (CTMS): a new personnel system that will recruit, develop, and retain our Nation’s top #cyber professionals. Learn more about how to apply ⬇️ https://t.co/In02I5sLAe https://t.co/LDKnZX6ofs" / Twitter
https://twitter.com/DHSgov/status/1460241026380177408
WISP - OffensiveCon Berlin Scholarship Application
https://forms.gle/PSvLUNoxxJ4qFLPv7
G DATA Advanced Analytics GmbH on Twitter: "We have reason to assume with high confidence that #Emotet is active again and currently distributed via #Trickbot https://t.co/2jjRyoCmcI" / Twitter
https://twitter.com/gdata_adan/status/1460298879090503681
Uncovering MosesStaff techniques: Ideology over Money - Check Point Research
https://research.checkpoint.com/2021/mosesstaff-targeting-israeli-companies/
Jim Sciutto on Twitter: "Breaking: "U.S. Space Command is aware of a debris-generating event in outer space. We are actively working to characterize the debris field and will continue to ensure all space-faring nations have the information necessary to maneuver satellites if impacted.” - US Space Command" / Twitter
https://twitter.com/jimsciutto/status/1460276308378898432
FBI's Email System Hacked to Send Out Fake Cyber Security Alert to Thousands
https://thehackernews.com/2021/11/fbis-email-system-hacked-to-send-out.html
Vitali Kremez on Twitter: "Introducing #Emotet C&C Loader Backend View in... SB Admin Favicons 😉 1⃣Partners ($) 3⃣Loader Tasks (plugins, updates) 3⃣IMAP/POP This template design is quite unsophisticated for one of the largest botnet in existence h/t @PolitieTHTC https://t.co/htiAlbTnp3" / Twitter
https://twitter.com/VK_Intel/status/1362897803924676609
Feodo Tracker | Browse Botnet C&Cs
https://feodotracker.abuse.ch/browse/dridex/
DHS Cybersecurity Service | Homeland Security
http://DHS.gov/cybersecurityservice
Full article: On the strategic consequences of digital espionage
https://www.tandfonline.com/doi/full/10.1080/23738871.2021.2000628
Recover Deleted Messages- Save - Apps on Google Play
https://bit.ly/3tQlS2A
Blacksmith - Computer Security Group
https://comsec.ethz.ch/research/dram/blacksmith/
Golden Certificate – Penetration Testing Lab
https://pentestlab.blog/2021/11/15/golden-certificate/